Restore default domain for X-GXCSRF-TOKEN cookie. (#870)

claudiamurialdo · web-flow · commit 4959fe12f418 · 2023-08-31T09:46:45.000-03:00
diff --git a/dotnet/src/dotnetcore/GxNetCoreStartup/Startup.cs b/dotnet/src/dotnetcore/GxNetCoreStartup/Startup.cs
@@ -681,13 +681,8 @@ internal static void SetAntiForgeryTokens(IAntiforgery _antiforgery, HttpContext
 			{
 				cookieOptions.SameSite = sameSiteMode;
 			}
-			Uri referer = context.Request.GetUrlReferrer();
-			if (referer != null)
-			{
-				cookieOptions.Domain = referer.Host;
-			}
 			context.Response.Cookies.Append(HttpHeader.X_GXCSRF_TOKEN, tokenSet.RequestToken, cookieOptions);
-			GXLogging.Debug(log, $"Setting cookie ", HttpHeader.X_GXCSRF_TOKEN, "=", tokenSet.RequestToken, " samesite:" + sameSiteMode, " domain:" + cookieOptions.Domain);
+			GXLogging.Debug(log, $"Setting cookie ", HttpHeader.X_GXCSRF_TOKEN, "=", tokenSet.RequestToken, " samesite:" + sameSiteMode);
 		}
 
 	}

Original file line number	Diff line number	Diff line change
`@@ -681,13 +681,8 @@ internal static void SetAntiForgeryTokens(IAntiforgery _antiforgery, HttpContext`
`681`	`681`	`{`
`682`	`682`	`cookieOptions.SameSite = sameSiteMode;`
`683`	`683`	`}`
`684`		`- Uri referer = context.Request.GetUrlReferrer();`
`685`		`- if (referer != null)`
`686`		`- {`
`687`		`- cookieOptions.Domain = referer.Host;`
`688`		`- }`
`689`	`684`	`context.Response.Cookies.Append(HttpHeader.X_GXCSRF_TOKEN, tokenSet.RequestToken, cookieOptions);`
`690`		`- GXLogging.Debug(log, $"Setting cookie ", HttpHeader.X_GXCSRF_TOKEN, "=", tokenSet.RequestToken, " samesite:" + sameSiteMode, " domain:" + cookieOptions.Domain);`
	`685`	`+ GXLogging.Debug(log, $"Setting cookie ", HttpHeader.X_GXCSRF_TOKEN, "=", tokenSet.RequestToken, " samesite:" + sameSiteMode);`
`691`	`686`	`}`
`692`	`687`
`693`	`688`	`}`